$ rpki-client -vvf rpki.apnic.net/member_repository/A9182FD0/2C9AA31C957611EE82EFCB1CC4F9AE02/24CB4F36957811EEA7BF2753C4F9AE02.roa File: 24CB4F36957811EEA7BF2753C4F9AE02.roa (raw, json) Hash identifier: 9dttNOR/5up7f2IDlYpMnPIOxHftM1WAtvoPyiR8tNQ= Subject key identifier: 84:4F:24:6D:60:4A:67:B7:1C:BA:E7:F5:E8:C2:E2:46:B7:3A:69:84 Certificate issuer: /CN=A9182FD0/serialNumber=7A5C4DD0A3BB9CD814B2174AF693E3F7414B995B Certificate serial: 0133 Authority key identifier: 7A:5C:4D:D0:A3:BB:9C:D8:14:B2:17:4A:F6:93:E3:F7:41:4B:99:5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/elxN0KO7nNgUshdK9pPj90FLmVs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9182FD0/2C9AA31C957611EE82EFCB1CC4F9AE02/24CB4F36957811EEA7BF2753C4F9AE02.roa Signing time: Thu 03 Jul 2025 05:09:43 +0000 ROA not before: Thu 03 Jul 2025 05:09:43 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 135606 IP address blocks: 103.68.58.0/24 maxlen: 24 103.68.59.0/24 maxlen: 24 2407:d80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9182FD0/2C9AA31C957611EE82EFCB1CC4F9AE02/elxN0KO7nNgUshdK9pPj90FLmVs.crl rsync://rpki.apnic.net/member_repository/A9182FD0/2C9AA31C957611EE82EFCB1CC4F9AE02/elxN0KO7nNgUshdK9pPj90FLmVs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/elxN0KO7nNgUshdK9pPj90FLmVs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 307 (0x133) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9182FD0, serialNumber=7A5C4DD0A3BB9CD814B2174AF693E3F7414B995B Validity Not Before: Jul 3 05:09:43 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68661097-66b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:29:6e:30:38:91:5b:30:00:5e:dc:4f:1b:90: 21:86:4a:8e:bf:8c:46:6d:9e:c2:48:fc:ab:06:b5: 5b:1d:c4:b6:f5:c8:2f:d3:9c:bb:1d:7a:69:5c:7f: 96:c9:28:1f:bf:38:81:05:1a:50:e8:2f:89:0b:5b: f8:5b:af:df:1c:53:5c:95:12:8a:78:69:57:02:91: b7:ef:0f:29:56:d2:28:1c:bb:72:31:2c:4e:48:22: b9:8f:1c:66:d0:e8:da:a9:1d:f7:41:17:42:f3:c8: 93:c7:7b:aa:ee:58:c5:f6:f1:16:54:97:d5:53:b5: c5:a1:58:45:1a:e5:b1:e9:69:d2:1e:e8:a7:50:26: 36:b8:51:7c:79:51:92:90:7f:c8:5c:d3:da:9a:f5: a2:5b:c2:72:4d:05:80:a1:36:c6:65:9c:96:85:68: 6d:12:5d:66:1d:cc:e1:d0:03:34:74:ce:d9:1c:38: d7:b2:1a:e7:fd:73:25:86:f6:da:a0:40:5b:45:2e: e5:9a:d9:43:d7:79:ab:57:c7:37:16:94:f0:a8:6b: 75:83:96:d6:10:35:09:3a:0a:f0:46:22:db:10:4d: 0b:96:45:f6:47:5a:08:6c:ea:96:1d:5d:85:bf:d6: 9c:62:3c:f8:b5:60:80:03:86:ff:eb:92:82:ba:f7: 1a:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:4F:24:6D:60:4A:67:B7:1C:BA:E7:F5:E8:C2:E2:46:B7:3A:69:84 X509v3 Authority Key Identifier: keyid:7A:5C:4D:D0:A3:BB:9C:D8:14:B2:17:4A:F6:93:E3:F7:41:4B:99:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9182FD0/2C9AA31C957611EE82EFCB1CC4F9AE02/elxN0KO7nNgUshdK9pPj90FLmVs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/elxN0KO7nNgUshdK9pPj90FLmVs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9182FD0/2C9AA31C957611EE82EFCB1CC4F9AE02/24CB4F36957811EEA7BF2753C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.68.58.0/23 IPv6: 2407:d80::/32 Signature Algorithm: sha256WithRSAEncryption 55:ea:fc:ed:12:57:40:6a:9e:b5:55:c4:76:c5:b7:85:aa:b6: 8a:06:2d:8e:5e:44:df:ee:38:40:e4:92:5d:ad:b1:d0:69:0d: 8c:4a:46:07:48:d6:1c:b1:0a:31:6e:be:cf:b2:2b:7e:f6:31: 24:96:93:81:58:2c:42:d8:67:3b:bf:70:b7:0b:ed:5b:a3:8d: a5:2c:aa:fe:a9:2a:20:cc:89:29:15:a9:a7:96:b1:5b:96:41: 63:7e:b3:72:7a:f7:ec:c3:89:3f:f2:a4:b6:b4:84:f4:f0:eb: bc:3b:74:26:13:ba:26:3f:ea:a1:d9:df:66:4a:68:f3:d9:c2: 27:f4:a5:53:1b:45:fc:94:fb:0f:b1:cd:19:d7:8b:f1:be:0d: fa:c5:0a:99:35:61:ef:93:1f:a4:3b:48:6f:ba:97:aa:35:f7: 88:9c:0a:b8:dd:4f:70:ac:ae:a1:08:ca:fb:14:b3:c1:2c:a5: d7:d9:69:bf:6f:c8:ed:3e:99:66:7b:d8:78:5f:12:9b:a2:d1: 9c:68:c5:e8:5f:9b:2d:d4:11:0f:f1:91:a7:ef:1b:94:53:e4: 28:96:01:12:3e:d6:b0:09:61:b6:af:12:35:03:35:f2:4f:74: ab:90:32:f8:79:ff:29:0b:9f:da:04:55:6e:ca:fd:79:26:0e: e5:6d:f8:4b -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICATMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODJGRDAxMTAvBgNVBAUTKDdBNUM0REQwQTNCQjlDRDgxNEIyMTc0QUY2OTNFM0Y3 NDE0Qjk5NUIwHhcNMjUwNzAzMDUwOTQzWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY2MTA5Ny02NmI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvSluMDiRWzAAXtxPG5AhhkqOv4xGbZ7CSPyrBrVbHcS29cgv05y7HXppXH+W ySgfvziBBRpQ6C+JC1v4W6/fHFNclRKKeGlXApG37w8pVtIoHLtyMSxOSCK5jxxm 0OjaqR33QRdC88iTx3uq7ljF9vEWVJfVU7XFoVhFGuWx6WnSHuinUCY2uFF8eVGS kH/IXNPamvWiW8JyTQWAoTbGZZyWhWhtEl1mHczh0AM0dM7ZHDjXshrn/XMlhvba oEBbRS7lmtlD13mrV8c3FpTwqGt1g5bWEDUJOgrwRiLbEE0LlkX2R1oIbOqWHV2F v9acYjz4tWCAA4b/65KCuvcaIwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFIRPJG1g Sme3HLrn9ejC4ka3OmmEMB8GA1UdIwQYMBaAFHpcTdCju5zYFLIXSvaT4/dBS5lb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MkZEMC8yQzlBQTMxQzk1 NzYxMUVFODJFRkNCMUNDNEY5QUUwMi9lbHhOMEtPN25OZ1VzaGRLOXBQajkwRkxt VnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VseE4wS083bk5nVXNoZEs5cFBqOTBGTG1Wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODJGRDAvMkM5QUEzMUM5NTc2MTFFRTgyRUZDQjFDQzRGOUFFMDIvMjRDQjRGMzY5 NTc4MTFFRUE3QkYyNzUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnRDowDQQCAAIwBwMFACQHDYAwDQYJKoZIhvcNAQELBQAD ggEBAFXq/O0SV0BqnrVVxHbFt4WqtooGLY5eRN/uOEDkkl2tsdBpDYxKRgdI1hyx CjFuvs+yK372MSSWk4FYLELYZzu/cLcL7VujjaUsqv6pKiDMiSkVqaeWsVuWQWN+ s3J69+zDiT/ypLa0hPTw67w7dCYTuiY/6qHZ32ZKaPPZwif0pVMbRfyU+w+xzRnX i/G+DfrFCpk1Ye+TH6Q7SG+6l6o194icCrjdT3CsrqEIyvsUs8EspdfZab9vyO0+ mWZ72HhfEpui0Zxoxehfmy3UEQ/xkafvG5RT5CiWARI+1rAJYbavEjUDNfJPdKuQ Mvh5/ykLn9oEVW7K/XkmDuVt+Es= -----END CERTIFICATE-----Generated at Thu Jul 3 10:39:42 2025 by rpki-client